Privacy Policy

What we collect

Atlas Synapse collects AI agent traces submitted via the ingest API: prompts, responses, tool call names and inputs/outputs, timestamps, and token counts. Before storage, all content passes through our PII redaction layer which strips emails, phone numbers, SSNs, credit card numbers, street addresses, JWT tokens, and API keys.

We also collect your account email address (via Supabase Auth) and billing information if applicable.

How we use it

• Evaluate agent traces for anomalies, policy violations, and failures
• Generate plain-English incident summaries
• Send email and Slack alerts when incidents are detected
• Display activity in your dashboard

We do not sell data, share it with third parties (except sub-processors below), or use it to train AI models.

Sub-processors

• Supabase — authentication and database hosting
• Cloudflare — edge worker (PII stripping happens here)
• Vercel — web application hosting
• Anthropic — AI evaluation of traces (redacted content only)
• Resend — transactional email delivery

Retention

Trace data is automatically deleted 90 days after ingestion. Account data is retained until account deletion. You may request deletion at any time by contacting us.

Your rights

You may request access to, correction of, or deletion of your data. Contact privacy@atlassynapse.ai.

Contact

privacy@atlassynapse.ai